We need to view rule usage which shows the hit-count of each rule

Reply
L1 Bithead

We need to view rule usage which shows the hit-count of each rule

Hi 

 

We need to view rule usage which shows the hit-count of each rule  is it possible to view this option in the os 8.0.10 

L5 Sessionator

Re: We need to view rule usage which shows the hit-count of each rule

You could play with custom reports and count sessions per rule name for a given period of time (assuming you have traffic logs for that period).

 

But proper rule hit counts were introduced in 8.1.0

L7 Applicator

Re: We need to view rule usage which shows the hit-count of each rule

@HemanthV,

As @santonic mentioned you'll have to do the old work around of creating a custom report to view this information, which is only really helpful for short time periods or viewing specific rules over a period of time. Larger installs will run into issue with this as there is no easy way to view the count associated with all of the security policies with the limitations of the custom reports. 

You can also build this out progamatically with the API easily enough to feed the information into a simple database to create reports for hit counts as you need them.

 

I'd say that you can't easily view this information without updating to 8.1 where the feature is actually built into the OS. I also wouldn't really recommend running 8.1 yet unless you have a lab environement that you can mirror your production system in and verify that all of the features that you are using actually function as required. 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the Live Community as a whole!

The Live Community thanks you for your participation!